Having seen so many people in #remote-exploit trying their best to get Backtrack 3 working with Intel's wireless chipsets, mainly the 3945ABG, I decided to write a quick-howto. Lets start by saying it's not quite easy. The default driver for Intel 3945 chipsets can do normal wireless stuff, but can't inject. The injection driver can't do normal wireless stuff. So you have to pick your tasks, and thus which driver to use, carefully.

In this brief guide I'll show you the quick way of getting over to the injection driver, finding a network in kismet and throwing wesside-ng at it to obtain the key. Then I'll show how to swap back over and connect to the network you've just pen-tested.

Leave kismet runing (there it says exit - wrong) and open new Konsole and then try "wesside-ng -i wifi0 -v {BSSID}". When kismet will get about 100 packets it should work. I did not test it because I tried this on WPA (I did not have chance to try it on WEP) but when I left kismet running it started to do something. Remember this works only for WEP.